Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
262
Views
0
Helpful
1
Replies

PIX fixup and multiple FTP servers on a single public IP

stretchlad
Level 1
Level 1

‎08-18-2006 08:15 AM - edited ‎02-21-2020 01:07 AM

We are having some devices installed that need to be publicly accessable as FTP servers. One device will exist at each of our 5 sites. We have a single

public IP address left and these devices are all on seperate subnets behind a PIX firewall and WAN router.

For example

ISP

PIX

(192.168.0.0/24) network

WAN Router

FTP server 1 - 192.168.1.1

FTP server 2 - 192.168.2.1

FTP server 3 - 192.168.3.1

FTP server 4 - 192.168.4.1

FTP server 5 - 192.168.5.1

Can the PIX be configured for FTP application inspection on multiple ports?

As well as handling the ports/access-list for the data channel will it create the translation dependant on which device the client is talking to?

Will this only work on version 7 upwards of PIX?

Thankyou

0 Helpful
1 Reply 1

pradeepde
Level 5
Level 5

‎08-24-2006 10:59 AM

We can configure FTP Inspection on Multiple ports.Multiple ports for FTP by entering separate commands fixup protocol ftp 2100,fixup protocol ftp 4254,fixup protocol ftp 9090.So from here PIX listens for FTP on ports 21,2100,4254,9090.Refer the URL

http://www.cisco.com/en/US/products/sw/secursw/ps2120/products_configuration_guide_chapter09186a00800eb727.html#wp1063623.The Ports are created based on the device the client is talking to.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card